Linux Kernel NULL Dereference Vulnerability in DRM Subsystem

Vulnerability

A vulnerability in the Linux kernel's DRM subsystem for Spreadtrum (SPRD) platforms could lead to a NULL pointer dereference. The issue arises in the 'sprd_drm_shutdown' function, where the 'drm' pointer may be NULL. This could cause a dereference of a NULL pointer, potentially leading to a system crash. The vulnerability has been addressed by removing the warning log that indicated a possible NULL dereference.

Impact

Exploitation of this vulnerability could lead to a NULL pointer dereference, causing a system crash.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NULL Dereference Vulnerability in DRM Subsystem

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating